/*
 * Licensed to the Apache Software Foundation (ASF) under one or more
 * contributor license agreements.  See the NOTICE file distributed with
 * this work for additional information regarding copyright ownership.
 * The ASF licenses this file to You under the Apache License, Version 2.0
 * (the "License"); you may not use this file except in compliance with
 * the License.  You may obtain a copy of the License at
 *
 *    http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.apache.dolphinscheduler.plugin.alert.script;

import org.apache.dolphinscheduler.alert.api.AlertResult;

import org.apache.commons.lang3.StringUtils;

import java.io.File;
import java.util.Map;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

public final class ScriptSender {

  private static final Logger logger = LoggerFactory.getLogger(ScriptSender.class);
  private static final String ALERT_TITLE_OPTION = " -t ";
  private static final String ALERT_CONTENT_OPTION = " -c ";
  private static final String ALERT_USER_PARAMS_OPTION = " -p ";
  private final String scriptPath;
  private final String scriptType;
  private final String userParams;

  ScriptSender(Map<String, String> config) {
    scriptPath = StringUtils.isNotBlank(config.get(ScriptParamsConstants.NAME_SCRIPT_PATH))
        ? config.get(ScriptParamsConstants.NAME_SCRIPT_PATH)
        : "";
    scriptType = StringUtils.isNotBlank(config.get(ScriptParamsConstants.NAME_SCRIPT_TYPE))
        ? config.get(ScriptParamsConstants.NAME_SCRIPT_TYPE)
        : "";
    userParams = StringUtils.isNotBlank(config.get(ScriptParamsConstants.NAME_SCRIPT_USER_PARAMS))
        ? config.get(ScriptParamsConstants.NAME_SCRIPT_USER_PARAMS)
        : "";
  }

  AlertResult sendScriptAlert(String title, String content) {
    AlertResult alertResult = new AlertResult();
    if (ScriptType.SHELL.getDescp().equals(scriptType)) {
      return executeShellScript(title, content);
    }
    // If it is another type of alarm script can be added here, such as python

    alertResult.setStatus("false");
    logger.error("script type error: {}", scriptType);
    alertResult.setMessage("script type error : " + scriptType);
    return alertResult;
  }

  private AlertResult executeShellScript(String title, String content) {
    AlertResult alertResult = new AlertResult();
    alertResult.setStatus("false");
    if (Boolean.TRUE.equals(OSUtils.isWindows())) {
      alertResult.setMessage("shell script not support windows os");
      return alertResult;
    }
    // validate script path in case of injections
    File shellScriptFile = new File(scriptPath);
    // validate existence
    if (!shellScriptFile.exists()) {
      logger.error("shell script not exist : {}", scriptPath);
      alertResult.setMessage("shell script not exist : " + scriptPath);
      return alertResult;
    }
    // validate is file
    if (!shellScriptFile.isFile()) {
      logger.error("shell script is not a file : {}", scriptPath);
      alertResult.setMessage("shell script is not a file : " + scriptPath);
      return alertResult;
    }

    // avoid command injection (RCE vulnerability)
    if (userParams.contains("'")) {
      logger.error("shell script illegal user params : {}", userParams);
      alertResult.setMessage("shell script illegal user params : " + userParams);
      return alertResult;
    }
    if (title.contains("'")) {
      logger.error("shell script illegal title : {}", title);
      alertResult.setMessage("shell script illegal title : " + title);
      return alertResult;
    }
    if (content.contains("'")) {
      logger.error("shell script illegal content : {}", content);
      alertResult.setMessage("shell script illegal content : " + content);
      return alertResult;
    }

    String[] cmd = {"/bin/sh", "-c", scriptPath + ALERT_TITLE_OPTION + "'" + title + "'" + ALERT_CONTENT_OPTION
        + "'" + content + "'" + ALERT_USER_PARAMS_OPTION + "'" + userParams + "'"};
    int exitCode = ProcessUtils.executeScript(cmd);

    if (exitCode == 0) {
      alertResult.setStatus("true");
      alertResult.setMessage("send script alert msg success");
      return alertResult;
    }
    alertResult.setMessage("send script alert msg error,exitCode is " + exitCode);
    logger.info("send script alert msg error,exitCode is {}", exitCode);
    return alertResult;
  }

}
